




Job Summary: We are seeking a senior professional to provide technical leadership and execute strategic Zero Trust and SASE projects, modernizing clients' security, connectivity, and remote access environments. Key Highlights: 1. Technical leadership in strategic Zero Trust and SASE projects. 2. Design of modern secure access architectures. 3. Support for advancing cyber maturity in hybrid and multicloud environments. About the Opportunity We are looking for a senior professional to lead technically and execute strategic Zero Trust and SASE (Secure Access Service Edge) projects, supporting clients in modernizing their security, connectivity, and remote access environments. This role will be responsible for designing modern secure access architectures, leading complex implementations, and supporting the advancement of cyber maturity in hybrid, multicloud, and globally distributed environments. **Key Responsibilities:** * Lead Zero Trust and SASE implementation and transformation projects; * Conduct assessments of legacy environments including VPN, proxy, traditional WAN, and edge security; * Define target architecture for secure access by users, branch offices, third parties, and workloads; * Implement ZTNA, SWG, CASB, DLP, FWaaS, SSE, and SD\-WAN solutions; * Execute migrations from traditional solutions to modern cloud platforms; * Configure identity-, context-, and risk-based access policies; * Integrate SASE platforms with IAM and MFA solutions; * Perform advanced troubleshooting and performance tuning; * Support N2/N3 operational sustainment; * Create technical documentation, HLD, LLD, and operational runbooks; * Participate in executive meetings and technical workshops with clients; * Support commercial teams with technical proposals and effort estimations. **Mandatory Requirements:** * Proven experience in Zero Trust and SASE projects; * Advanced knowledge of networking and connectivity: TCP/IP, DNS, DHCP, BGP, OSPF, NAT, VPN, Proxy, SSL/TLS, and SD\-WAN; * Practical experience with at least two of the following platforms: + Palo Alto Networks (Prisma Access) + Netskope (Netskope) + Zscaler (ZIA, ZPA \& ZDX) * Experience integrating identity solutions: + Microsoft Entra ID + Okta + Ping Identity * Hands-on enterprise-level troubleshooting experience; * Knowledge of cloud security (AWS / Azure / GCP); * Advanced English for meetings, workshops, and international projects. **Preferred Qualifications:** * Vendor certifications (Palo Alto, Netskope, Zscaler); * Experience in global projects and multinational environments; * Knowledge of automation using Python, Terraform, and APIs; * Experience with SIEM, SOC, and incident response; * Knowledge of AI Security for SSE services. **Work Model:** * Hybrid or remote (as per project requirements); * National and international engagement; * Occasional travel possible. **Benefits:** Health Insurance \- 100% company-subsidized (for employee and dependents) Dental Insurance Meal or Food Allowance — no payroll deduction Life Insurance Private Pension Plan Gympass Discounted Employee Stock Purchase Plan Pharmacy Discount\* Childcare Assistance\* Language School Partnership\* Extended Maternity and Paternity Leave Profit Sharing Program (PPR) \* * As per current policy


